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Ay ^lMethod for the Access of the Mobile Terminal to the WLAN 
an d for the Data Commmiication via the Wireless Lin k Securely 

5 Field of the Invention 

The present invention relates to a method for the secure 
access of mobile terminal to the Wireless Local Area Network 
(WLAN) and for secure data communication via wireless link, a 
10 product of combining wireless communication technology with 
encryption technology. 

Background Technology 

IS The object of personal communication is to enable one to 

carry on any communication at any time, at any place, and with 
any other person, and to freely enjoy the multiple services 
provided on networks. Incorporating the two popular 
technologies, such as the IP technology and wireless 

20 communication technology, the WLAN technology follows the 
trend of broadband development and provides mobile mainframe 
or mobile terminal with convenient and high-speed internet 
access services to meet the increasing demands for the high-speed 
network and multimedia communication services. The WLAN not 

25 only supports mobile computation, but also has the flexibility, 
expeditiousness and expandability of a framework. Fig.l is a 
diagram showing the structure of the WLAN-based broadband 
wireless access network mainly comprising devices, such as the 
mobile terminal (MT), access point (AP), and wireless access 

30 server (WAS), wherein MT remains freely mobile, AP performs 
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the functions of cell iotianagements, including hand off between 
the cells, MT management and bridging, and WAS performs the 
MT inter-network roaming management. From fixed access to 
mobile wireless access to the internet, the WLAN-based 
s broadband wireless IP technology has brought brand-new 
concept to, and had tremendous impact on, the worldwide 
network environment. The system, which is of extraordinarily 
wide application, is very useful in commercial networks (mainly 
corporate intranet), institutional users' networks (e.g. public 
10 security, finance, and government departments), area networks 
(e.g. schools, hospitals, repartntial quarters, remote monitor or 
concentrated monitor), temporary networks (e.g. temporary 
meetings), outdoor mobile subscribers and places where it is 
difficult to lay wires and where constant change is involved. 

15 

As for WLAN, the issue of its security is a matter by far more 
serious than the wired networks. For that matter, several levels 
of means are incorporated in WLAN to address the issue. First 
providing a different Service Set ID (SSID) for each AP and 

20 forcing MT to present corresponding SSID at the time of access 
to allow users of different groups to access and distinctively 
restrict the right to access the resources. However, making use of 
the SSID is one of the most ocular ways of authentication and the 
relatively low level of security authentication since anyone who 

25 knows the SSID can access a network. Second is the address 

restriction, that is, preventing unauthorized access by placing at 
AP the Medium Access Control (MAC) address table of the 
authorized MT wireless card. However, the MAC address of the 
wireless card is not difficult to obtain and possible to be forged. 

30 Therefore, it is also a; relatively low-level authentication for 
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authorization. Anyway^ neither of the two ways can effectively 
control the access of MT, and it is ail the more impossible to 
ensure the confidentiality of communication. 

5 Besides the abovie two methods, a measure more widely used 

now is introduction, -on the basis of the International Standard 
(IEEE802ai) of WLAN, into WLAN of the RC-4-ba$ed Wired 
Equivalent Privacy (W£P) confidentiality mechanism for data 
encryption and transmission. The WEP algorithm uses the single 

10 key system^ i.e. using the same secret key for 

encryption/decryption, and the secret key is 64 or 128 bits in 
length, in which 40 or 104 bit is the fixed part known as initiation 
secret key, namely the one arranged at AP and MT, and the 
reimaining 24 bit is a variable part known as the initiation vector, 

IS which is to be changed by the driver software of the network card 
in the process of coolmunication. That is to say, the key for 
encryption is variable, which ensures, to a certain extent, the 
confidentiality of thei wireless communication. However, due to 
the regularity of the variation of the initiation vector, the WEP 

20 algorithm is not quite secure. This was first discovered by a 

research team of the University of California, the U, S. in March 
2001. They pointed out that the WLAN of WEP algorithm can be 
broken through within S hours for this reason: assume that the 
initiation vector value changes at the rate of addition of 1 per 

25 frame, each frame is it 500 bytes long, and the rate of data 

transmission is 11 megabit, then the initiation vector repeats at 
the period of 

1500 byte/frame x 8 bit/byte x 1 second/(llxlO*^bit) x 2'^ 
30 frame~18300 seconds s 5 hours, 
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i.e. two-frame text encrypted by the same secret key is 
obtained at the interval of S hours, and it is thus possible to guess 
or calculate the valu0 of the initiation secret key. It must be 
S pointed out here that the length of the secret key does not affect 
its decryption time, but complicates the guess and calculation. In 
August 2001, three World top decryption experts, two experts 
with the Weizmann Research Institute, Israel and a researcher 
with the Cisco (®^) Incorporation, performed a WEP security 

10 test. They decrypted Iwithin an hour the secret key used for 

WLAN according to a small part of data taken from the network. 
Also, the AT&T Laboratory has accomplished the decryption in 
the same way. This sufficiently shows that the WEP cannot 
ensure the security of WLAN. The matter of security has become 

15 one of the obstacles tilocking the wide application of WLAN, and 
secure access and confidential communication have been the most 
important part in the research of the WLAN technology. 

Summary of the Invention 

20 

The object of the present invention is to overcome the 
abovementioned technical deficiencies and to provide a method 
for the secure access of mobile terminal to the Wireless Local 
Area Network (WLAN) and for secure data communication via 

25 wireless link. It combines the common key encryption technology 
and the symmetry en(hryption technology, resolves the failure of 
the WLAN to provide effective control on secure MT access, and 
overcomes the limited confidentiality of the data communication 
via wireless link, so tfaat it has not only achieved control on the 

30 access of MT, but also ensured the security of MT access and high 
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confidentiality of communication. 

The present invention provides a method for the secure 
access of mobile terujiina] to the Wireless Local Area Network 
5 (WLAN) and for secure data communication via wireless link, 
wherein MT and AP iperform the two-way certificate 
authentication through the authentication server (AS); and MT 
and AP perform negotiation of secret key for conversation, 

10 According to its jp referred embodiments, the present 

invention has provided a method for the secure access of mobile 
terminal to the Wireless Local Area Network (WLAN) and for 
secure data communication via wireless link, wherein when MT 
logs on AP, MT and AP performs said two-way certificate 

15 authentication through AS; after said two-way certificate 

authentication is successfully performed, MT and AP perform 
said negotiation of the secret key for conversation* 

According to its preferred embodiments, the present 
20 invention has provided a method for the secure access of mobile 
terminal to the Wireless Local Area Network (WLAN) and for 
secure data communi|cation via wireless link, wherein when MT 
logs on AP, MT and AP inform one another of their respective 
certificate, and then they perform negotiation of secret key for 
25 conversation, and aftier said negotiation of secret key for 
conversation is performed, MT and AT performs the two-way 
certificate authenticaition through AS, and judge whether the 
certificate used by th^ other part is the same as the one informed 
by it. If it is not, the authentication fails; if it is, the result of the 
30 authentication depends on the result of said two-way certificate 
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identification* 

i 

Said two-way certificate identification comprises: 

5 1) when MT logs on AP, MX sends to AP the access 
authentication rlsquest message containing the MT 
certificate; 

2) after AP receive$ said access authentication request message, 
it adds the AP cc^rtificate to the message, then sends to AS the 

i 

10 certificate authentication request message containing said 
MT certificate and AP certificate; 

3) after AS receive^ said certificate authentication request 
message, AS autjienticates the AP certificate and MT 
certificate in said message, and then sends baclc to AP the 

IS certificate authentication response message with the AS 

signature; 

i 

4) after AP receives said certificate authentication response 
message, AP authenticates the AS signature, so as to obtain 
the result of authentication of the MT certificate, and then 

20 sends back to MT the certificate authentication response 

message as the access authentication response message; and 

5) after MT receives said access authentication response 
message, MT autjhenticates the AS signature and obtains the 
result of authentication of the AP certificate, so as to 

i 

25 complete said two-way certificate identification between MT 

and AP. i 

According to its i>referred embodiments, the present 
invention has provided a method for the secure access of mobile 

30 terminal to the Wirel^s Local Area Network (WLAN) and for 

i 
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secure data communicatioii via wireless link, wherein 1) when 
MT logs on AP, MT $;ends to AP the access authentication request 
message containing t=he MT certificate for said two-way 
certificate authentication; 2) after AP receives said access 
5 authentication request message, it adds the AP certificate to the 
message, then sends Ito AS the certificate authentication request 
message containing s;aid MT certificate and AP certificate for 
said two-way certificate authentication, and meanwhile begins 
with MT negotiation! of the secret key for conversation; 3) after 

10 AS receives said certlificate authentication request message, AS 
authenticates the APj certificate and MT certificate in said 
message, and then sends back to AP the certificate authentication 
response message with AS signature for said two-way certificate 
authentication; 4) after AP receives said certificate 

IS authentication respoiise message, AP authenticates the AS 

signature, so as to objtain the result of authentication of the MT 
certificate, and then bends back to MT the certificate 
authentication response message as the access authentication 
response message for! said two-way certificate authentication; and 

20 5) after MT receives said access authentication response message, 
MT authenticates the AS signature and obtains the result of 
authentication of thejAP certificate, so as to complete the process 
of said two-way certificate identification between MT and AP, 
and then MT performs the corresponding processing to complete 

25 said negotiation of sejcret key for conversation. 

j 

According to its i>referred. embodiments, the present 

i 

invention has provided a method for the secure access of mobile 
terminal to the Wireijess Local Area Network (WLAN) and for 
30 secure data communijcation via wireless link, wherein 1) when 
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MT logs on AP, MT ^ends AP the access authentication request 
message containing the MT certificate for said two-way 
certificate authentication; 2) after AP receives said access 
authentication request message, it adds the AP certificate to the 
5 message, then sends to AS the certificate authentication request 
message containing ^aid MT certificate and AP certificate for 
said two-way certificate authentication; 3) after AS receives said 
certificate authentication request message, AS authenticates the 
AP certificate and MT certificate in said message, and then sends 

10 back to AP the certificate authentication response message 
containing AS signature for said two-way certificate 
authentication; 4) after AP receives said certificate 
authentication respobse message, AP authenticates the AS 
signature, so as to obtain the result of authentication of the MT 

IS certificate. AP judgejs the result of authentication. If the 

j 

authentication is not! successful, AP sends back to MT said 
certificate authentication response message as the access 
aathentication response message for said two-way certificate 
authentication; If th^ authentication is successful, AP begins to 

20 consult with MT the secret key for conversation while it sends 
back to MT said access authentication response message; and 5) 
after MT receives said certificate authentication response 
message, MT authenticates the AS signature and obtains the 
result of authentication of the AP certificate, so as to complete 

25 said two-way certificate identification between MT and AP, and 
then MT performs tUe corresponding processing to complete said 
negotiation of secret key for conversation. 

According to its preferred embodiments, the present 
30 invention has provided a method for the secure access of mobile 
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terminal to the Wireless Local Areisi Network (WLAN) and for 
secure data commumcation via wireless link, wherein 1) when 
MT logs on AP, each- part informs the other of its own certificate, 
then they complete said negotiation of secret key for conversation, 
5 and, meanwhile, MTialso completes informing AP of the access 
authentication request identification; 2) AP sends to AS the 
certificate authentication request message containing the MT 
certificate and AP c0rtificate for said two-way certificate 
authentication; 3) afjter AS receives said certificate 

10 authentication request message, AS authenticates the AP 

certificate and MT certificate in said message, and then sends 
back to AP the certifpicate authentication response message 
containing AS signature for said two-way certificate 
authentication; 4) after AP receives said certificate 

IS authentication response message, AP authenticates the AS 

signature, so as to obtain the result of authentication of the MT 
certificate, and then sends back to MT said certificate 
authentication response message as the access authentication 
response message for said two-way certificate authentication; and 
20 5) after MT receives said access authentication response message, 
MT authenticates the AS signature, and then judges whether the 
AP certificate in the message is the same as the one AP 
informed of before negotiation of secret key for conversation. If 
it is not, the authentilcation fails; if it is, MT obtains the result of 
25 the authentication of ithe AP certificate from the message, so as to 
complete said two-w^y certificate authentication process between 
MT and AP. 

! 

Said access authcintication request message also comprises 
30 access authenticationlrequest identification. 

j 
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Said certificate authentication request message also 
comprises access authentication request identification, or also 
comprises access authentication request identification and AP 
signature. 

Said certificate Authentication response message also 
comprises, before :the signature filed of AS, the information of 
the result of the MX certificate authentication and those of the 
AP certificate authentication* 

Said access authbntication response message is identical with 
said certificate authentication response message. 

Said access authentication request identification is a string of 
random data or authjentication serial number. 

Said informatioii of MT certificate authentication result 
comprises the MT certificate, and the MT certificate 
authentication result: and the AS signature, or comprises the MT 
certificate and the MT certificate authentication result. 

Said information; of the AP certificate authentication result 
comprises the AP certificate, the AP certificate authentication 
result, the access authentication request identification and the AS 
signature, or comprisles the AP certificate, the AP certificate 
authentication result and the access authentication request 
identification, 

i 

When MT wants 'to access to the designated AP, the MT must 

: 
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first of all obtain the relevant information of the AP or the 
certificate of the APi 

Said negotiation; of secret key for conversation refers to MX 
5 or AP using AP*s or |MT's common key and their respective 
private key to generate the secret key for conversation* 

In one of the preiferred embodiments of the present invention, 
negotiation of secret ikey for conversation comprises the 
10 following: 

1) MT secretly chooses an integer a, from which to calculate the 
integer fCa), comlbines the integer f(a) and the MT signature 
on it into the secret key negotiation request message, and 

IS transmits it to AP; said f is a function rendering integer a 

from the integer ;f(a) incalculable; 

2) after it receives ^aid secret key negotiation request message, 
AP secretly choo'ses an integer b, from which to calculate the 
integer f(b), forms the integer f(b) and the AP signature on it 

20 into the secret key negotiation response message, and 

transmits it to M^T; said f is a function rendering integer b 
from the integer f(b) incalculable; and 

3) AP calculates g(lj,f(a)), and MT calculates g(a, f(b)) after it 
receives said secret key negotiation response message, as the 

25 secret key for conversation in the process of communication; 

said g is a function rendering the calculation of g(a, 
f(b»=g(b,f(a» pojssible. 

In another prefeijred embodiment of the present invention, 
30 said negotiation of secret key for conversation comprises the 
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following: 

1) AP secretly chobses an integer b, from which to calculate 
integer f(b), conibines the integer f(b) and the AP signature 

5 on it into the secret key negotiation request message, and 

transmits it to MT; said f is a function rendering integer a 
from the integer! f(b) incalculable; 

2) after it receives jsaid secret key negotiation request message, 
MT secretly chobses an integer a, from which to calculate the 

10 integer f(a), combines the integer f(a) and the MT signature 
on it into the secret key negotiation response message, and 
transmits it to AP; said f is a function rendering integer a 
from the integer; f(a) incalculable; and 

I 

3) MT calculates g(a,f(a)), and AP calculates g(a, f(b)) after it 
15 receives said sec^ret key response message, as the secret key 

for conversation; in the process of communication; said g is a 
function rendering the calculation of g(a, f(b))=g(b,f(a)) 
possible. 

20 In another preferred embodiment of the present invention, 

negotiation of secret Ikey for conversation comprises the 
following: 

1) MT or AP generates a string of random data, and transmites 
25 them as the secret key negotiation request message to AP or 

MT after encryption using the common key of AP or MT; 

2) after it receives said secret key negotiation request message 
from MT or AP, -AP or MT uses its own private key for 
decryption, obtains the random data generated by the other 

30 part; then AP or IMP generates again a string of random data; 
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and sends them ;as the secret key negotiation response 
message to MX Or AP after encryption using the common key 
of MX or APj aiid 
3) After it receives; said secret key negotiation response message 
5 from AP or MX,; MX or AP, uses its own private key for 

decryption, obtaiins the random data generated by the other 
part; both MX a|nd AP utilizes the random data generated by 
the other part aiid itself to generate the secret key for 
conversation* 

10 

In another preferred embodiment of the present invention, 
negotiation of secret; key for conversation comprises the 
following: 

IS 1) MX or AP generlates a string of random data, and, after it 
utilizes the comihon key of AP or MX for encryption, 
attaches its own ^signature as the secret key negotiation 
request message^ and transmits it to AP or MX; and 

20 2) after AP or MX receives said secret key negotiation request 
message from MX or AP, it utilizes the common key of MX or 
AP to authenticate the signature, and then utilizes its own 
private key to decrypt the encrypted message received; both 
MX and AP uses; the random data as the secret key for 

25 conversation. 

Besides^ said negotiation of secret key for conversation may 
also comprise negotiation of the communication algorithm used 
in the process of comimunication. 

30 

! 
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The present invention has the following advantages over the 
prior art; ; 

It has resolved tjhe problem off failure in WLAN to have an 
5 effective control of sjecnre MT access, and overcome the 

limitation on the confidentiality of the data communication via 
wireless link* Besides, it combines the common key encryption 
system and the symmetry encryption technology, has realized the 
two-way certificate Authentication between MT and AP, and 

10 further improved the security of access; in addition, it has 

accomplished, through the dynamic negotiation of secret key for 
conversation, the dynamic revision of the secret key in the 
process of each authentication, secret key and communication, to 
achieve the secure data communication, and greatly increased the 

IS difficulty of decryption. In conclusion, the method has not only 
achieved control on the access of MT, but also ensured the 
security of MT access and the high confidentiality of 
communication. 

I 

I 

20 Brief Description of the Drawings 

Fig. 1 is a diagram showing the structure of the conventional 
broadband wireless IP system; 

i 

25 Fig, 2 is a block diagram showing the logic structure of the 

AS-based WLAN security authentication system of the present 
invention; 

Fig. 3 is a flow c^art of authentication of the present 
30 invention at the timejof MT access. 
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Description of the Preferred Embodiments 

s 

Following is a fiirther description of the present invention on 
5 the basis of the drawings and embodiments. 

Fig. 2 is a block jdiagram showing the logic structure of the 
AS (Authentication Server)*based WLAN security authentication 
system. The commonj key encryption technology is used* When 

10 MT logs on AP, two-jway certificate authentication must be 
performed using AS«; Only the MT holding the authorized 
certificate can access to AP holding the authorized certificate^ 
otherwise, AP refuses MT to access or MT refuses to log on AP. 
After successful autlientication, MT and AP carry on negotiation 

15 of common key for conversation, use the symmetry encryption 
technology to realize; secure data communication via the wireless 

i 

link. The whole procjess is as shown in Fig. 3, in which the 
contents of the certificate mainly comprise the serial number of 
the certificate, namejof the certificate authorizer, term of validity 
20 of the certificate, nai^e of the certificate holder, common key 

information of the certificate holder, signature algorithm used by 
the certificate authoiiizer and signature of the certificate 
authorizer on the cerjtificate. 

25 1. Two-way Certificate Authentication 

j 

When MT logs on AP, the two parts perform the two-way 
certificate authentici^tion through AS as is shown in the following 
workflow: 

30 i 
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a) Access authentication request. MT sends to AP the access 
authentication request message, that is, sending to AP the 
MT certificate akid a string of random data or authentication 
serial number, in which the string of random data or 

s authentication serial number are called access authentication 

request identification; 

b) Certificate authentication request. After it receives the MT 
access authentication request message, AP sends to AS the 
certificate authe|ntication request message, that is, sending to 

10 AS the MT certiificate, access authentication request 

identification anjd AP certificate or MT certificate, access 
authentication request identification, and the certificate 
authentication request message constituted by the signature 

i 

of AP's private key on them; 

15 c) Certificate authentication response. After AS receives the 
AP's certificate authentication request message, if the 
message contains AP's signature, AS first authenticates the 
signature as to its authenticity. If it is not authentic, the 
authentication result are determined as failure. Then it 

20 authenticates the AP certificate and the MT certificate as to 

their legitimacy.; With the authentication done, AS will send 
back to AP [1] the MT certificate authentication result 
information including the MT certificate and the MT 
certificate authehtication result, and AS's signature on them, 

25 or only including the MT certificate and the MT certificate 

authentication result, [2] AP certificate authentication result 
information including the AP certificate and AP 
authentication result and access authentication request 
identification, and AS's signature on them or only including 

30 the AP certificate and the AP certificate authentication 
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result, and the ajccess authentication request identification, 
and [3] the certificate authentication responses message 
constituted by AS's signatures on [1] and [2] ; 
d) Access authentication response. AP authenticates the 
S signature on the: certificate authentication response message 

sent back by AS^ and obtains the MT certificate 
authentication result, AP sends back to MT the certificate 
authentication riesponse message as the access authentication 
response messagje; 
10 e) MT authenticates the signature on the authentication 
response messagje sent back by AP, and obtains the 

authentication result of the AP certificate. 

t 

i 

Now, the two-way certificate authentication process has been 
IS completed between and AP. If their certificates are 

successfully authentijcated, AP allows MT to access, or it refuses 
it to access, or MT refuses to log on AP. Now, the MT having the 
authorized certificate has successfully accessed to the AP having 
the authorized certificate, and AP's function to control the secure 
20 access of MT has beein completed. 

2. Negotiation of Secret Key for Conversation 

After the two-way certificate authentication of MT and AP is 
25 successfully performed, that is, achieving MT's successful entry, 
the two parts then usie each other's common key and their 
respective own private key to generate in itself the secret key for 
conversation to be usled for encryption and decryption of the 
communication data inessages, so as to realize the secure, 
30 confidential wireless icommunication between MT and AP. 

i 
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However, it is worth; noting that within the term of validity of the 
certificate, the secret key for conversation between MT and AT 
remains unchanged* iln order to realize each authentication of 
each secret key, the dynamic negotiation of the secret key for 
s conversation is necessary* The dynamic negotiation of the secret 
key for conversation; proceeds as follows: 

a) The secret key rtegotiation request, MT or AP generates a 
string of random data, and, after encryption using the 

10 common key of AP and MT, sends to AP or MT the secret key 
negotiation reqdest message; 

b) The secret key negotiation response* After AP or MT receives 
the secret key negotiation request message sent from MT or 
AP, AP or MT ujses its own private key for decryption, and 

i 

IS obtains the randjom data generated by the other part* It then 

locally generate;^ a string of random data, and, after 
encryption using the common key of MT or AP, responds to 
MT or AP in respect of the secret key negotiation response 
message; 

20 c) After MT or AP 'receives the secret key negotiation response 
message sent froptn AP or MT, MT or AP uses its own private 
key for decryption, and obtains the other part's random data; 

MT and AP both! use the two random data generated by itself 

j 

or the other part to generate the secret key for conversation 
25 to be used for enicryption and decryption of the 

communication data messages. 

To further improve the confidentiality of the communication, 
after MT and AP car^y on communication for a period of time or 
30 exchange given amoujnt of messages, the negotiation of the secret 
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key for conyersation| may be performed once again* 

The two-way ceiitificate authentication completes MT's 
secure access and the negotiation of the secret key for 
5 conversation fully ensures the highly confidential communication 
between MT and API 

It is specially pointed out that: 

10 (1) If MT intends to access to the designated AP, MT should, 

before the two-way certificate authentication, know about the 
relevant information! of AP or keep the certificate of AP, in order 
for MT to judge the access authentication response message it 
receives; 

IS (2) The negotiation of the secret key for conversation may 

also comprise negotiation of the communication algorithms, that 
is, in the secret key negotiation request message are listed the 
coKnmunication algorithms supported by the requesting part« The 
responding part chooses one of the communication algorithms 

20 provided by the requesting part, and sends back to the requesting 
part through the secret key negotiation response message* After 
the negotiation of the secret key for conversation is completed, 
the two parts use the communication algorithm of negotiation to 
perform confidential communication. 

25 (3) The dynamic negotiation of the secret key for 

conversation may also be realized as follows. MT or AP locally 
generates a string oflrandom data, attaches its own signature, 
and sends it to the oljher part after encryption using the other 
part's common key. After AP or MT receives it, AP or MT uses 

30 the other part's common key to authenticate whether it is the 
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data sent by the oth^r part, then uses its own private key to 
decrypt the encrypted message it receives. The two parts use the 

! 

random data as secret key for conversation to decrypt the 
communication data! 
5 (4) The negotiation of the secret key for conversation may 

also proceeds as follows: 

a) MT secretly chopses an integer a, calculates f(a)9 sends to AP 
f(a) and MT's sijgnature on it, in which f is a function 

10 rendering the callculation of a from f(a) impossible; 

b) AP secretly choqses an integer b, calculates f(b), sends to MT 
f(b) and MT's si|gnature on it, in whicb the definition of 
function f is the Isame as a); 

c) MT calculates g^a, f(a)) and AP calculates g(b, f(a)), as the 
IS secret key for cdnversation in the process of communication, 

in which g is a function rendering the calculation of g(a, f(b)) 
= g(b, f(a)) possiible. 

(5) As above mi^ntioned, first performing the two-way 

20 certificate authentication and then the negotiation of secret key 
for conversation, bufi in the specific implementation of the 
process, it might als6 be that the negotiation of secret key for 
conversation is perfo;rmed before the two-way certificate 
authentication, or the two processes are performed in 

25 combination or alternatively. 

(6) The negotiajtion of the secret key for conversation is 
first, and the two-way certificate authentication is then 

i 

performed specifically as follows: 
30 a) When MT logs on AP, the two parts inform each other of 

i -20- 
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their respective certificate; 

b) Using the said method, MX and AP perform the negotiation 
of the secret key! for conversation; 

c) Using the said mjethod, MX and AP perform the two-way 

5 certificate authentication, and judge whether the certificate 

used by the other part is the same as the certificate informed 
of by it in step aj). If it is not, the authentication fails; or the 
authentication result depend on the result of the process of 
the two-way certificate authentication* 

10 

(7) Xhe two-w^ certificate authentication and negotiation 

i 

of the secret key for conversation are performed in alternation as 
follows: 

! 

IS Xhe processes ofj two-way certificate authentication and 

negotiation of secret jkey for conversation are exactly the same as 
above. Xhe difference lies only in the alternation of the sequence 
of the messages. Xhat is, when MX logs on AP, MX sends to AP 
the access authentication request message. After it receives the 

20 message, AP, while sending AS the certificate authentication 

request message, begins the negotiation with MX of the secret key 
for conversation, so that the two-way certificate authentication 
and negotiation of thie secret key for conversation are performed 
alternatively at a higher speed than the separate performance* 

25 I 

(8) The two-way certificate authentication and negotiation 
of the secret key for conversation are performed in combination 

! 

as follows: 

! 
I 

30 When MX logs on AP, the two parts first perform the two- 
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way certificate authentication, and then the negotiation of the 
secret key for conversation* But when the authentication is about 
to be finished, that is, AP, while sending back to MT the access 
authentication response message, begins the negotiation with MT 
S of the secret key for jconversation, that is, it may add the secret 
key negotiation requjest information to the access authentication 
response message, so! that the two-way certificate authentication 
and negotiation of thle secret key for conversation are performed 
in combination at a liigher speed than the separate performance. 

10 

! 

(9) The two-wajy certificate authentication and negotiation 
of the secret key for jconversation may also be performed in the 

i 

following way. That is, the method is simplified by first 
performing the negotiation of secret key for conversation^ and 

IS then the two-way certificate authentication. In the process in 
which MT and AP inlform each other of their respective 
certificate and perfoirm the negotiation of the secret key for 
conversation, MT shbuld also inform AP of the access 
authentication requeist identification. Therefore, when 

20 performing the two-^^y certificate authentication after that, MT 
does not need to send to AP the access authentication request 
message. Instead, Al^ directly sends to AS the certificate 
authentication request message and begins the two-way 
certificate authentics|tjon. When the process of authentication is 

25 completed, it is only hecessary for MT to judge whether the 
certificate used by AP is the same as the certificate AP informs 
before the negotiation of the secret key for conversation. If it is 
not, the authenticaticln fails; if it is, the authentication result 
depends on the result of the process of the two-way certificate 

30 authentication, 

I 

i 

-22- 

! 
! 
! 

: 



